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DETAILED ACTION 
Response to Amendment 

1 . This amendment is in response to tine amendment filed on IVlay 31 , 201 1 . Tine 
Applicant has amended the claims in response to the non-compliant notice mailed on 
March 29, 2011. 

2. Claims 1 -5, 7, 9, 1 1 , 20-26, 28, 36-43, and 45 are currently pending 
consideration. 

Response to Arguments 

Applicant's arguments filed on May 31 , 201 1 have been fully considered but they 
are not persuasive for the following reasons: 

The Applicant argues that the Cited Prior Art (CPA), Jerger, does not teach 
"evaluating a content of the object to determine whether the object contains an upgrade 
for a program already existing on the client device" (see Applicant's Remarks: page 
1 6). This argument is not found persuasive because Donohue, not Jerger, was used to 
disclose whether the object was an upgrade to an existing object. Donohue discloses a 
method for updating software, including accessing a web site to download resources to 
update versions of software, downloading the resources, verifying the resources and 
building the updated version, wherein verification step includes verifying the signature of 
the downloaded resource, verifying allowable growth paths from current to the updated 
versions based on license restrictions, and verifying other authentication information 
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including password and/or database usage parameter values (Donohue: column 10, 
line 1 6 - column 1 2, line 48). It would have been obvious to use this criteria to 
determine whether the object is to upgrade an existing object since this ensures that 
only trusted resources are used to upgrade an existing object (Donohue: column 10, 
lines 50-58). 



Definitions and Significant Terms 

1 . The following portion of Applicant's specification was deemed pertinent for the 
limitation 'Talccording ... a trust level of a plurality of trust level security settings of the 
browser to the obiect" (see claim 1): paragraphs [0023-0066] on pgs. 5-18. In 
particular, paragraph [0025] discloses a Trust analyzer 210 assessing a level of trust to 
a detected object based on the content, source or action associated with the object 208; 
paragraph [0033] discloses that the level of trust my be considered to be tiered ("That is, 
more than being determined to be merely trusted or untrusted, object 208 may be 
accorded a variable level of trust in accordance with the content, source, and action 
corresponding to object 208."); and paragraphs [0038-0066] disclose further details of 
the trust level analysis process. 

2. "computer-readable storaoe medium" (see claim 21 ): in view of pgs. 26-27 of 
Applicant's specification, this limitation is interpreted to be directed to only statutory 
inventions under 35 USC 101 , i.e. it does not include within its scope, under the 
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broadest reasonable interpretation, signal inventions. Paragraph [0092] identifies that 
computer readable media may comprise "computer storage media" and 
"communications media." Furthermore, paragraphs [0093-0094] classify "computer 
storage media" as directed to hardware-related storage devices, whereas 
"communications media" are directed to transitory propagation signals. Hence, a 
"computer-readable storage medium" is directed to hardware-related storage devices 
including volatile and non-volatile memory. 

Response to Arguments 

3. Applicant's arguments with respect to the amended claims are moot in view of 
the new rejections. 



Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claims 1 , 3-5, 7, 9, 1 1 , 20-26, 28, 36, 38-43, and 45 are rejected under 35 U.S.C. 

1 03(a) as being unpatentable over Jerger et al. US 6,321 ,334 (hereinafter Jerger) in 

view of Donohue USPN 6,202,207 (hereinafter Donohue) and further in view of Pennell 

et al. US Patent Application Publication No. 20030098883. (hereinafter Pennell). 



Application/Control Number: 10/780,144 
Art Unit: 2431 



Page 5 



5. As per claim 1 , Jerger discloses a tiered security system and method for 
managing active content downloaded from a network on to a browser. The invention 
implements a tiered system where each lower tier provides a more fine grained 
definition of system policy. This invention classifies network content by designating 
general security zones, which encompass Web sites and related collection of pages, as 
well as distinguishing different types of active content downloaded from these sites. 
Security level designations are accorded on both a coarse grain level (security zones) 
and a fine grained level (active content within a downloaded page). Fig. 2 illustrates the 
architecture of the security system, which is reprinted below. 
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Fig. 5A illustrates a dialog window to configure security levels for Java applications that 
are downloaded from the network, which is reprinted below. 
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Qpemtims 



Figure 5A 

6. Each of the security level settings defines a preconfigured permission set for the 
active content. See generally, col. 20, line 43-col. 28, line 34, "Administering 
Permissions in Zones." 

7. Hence, Jerger discloses a method of displaying a web page by a browser at a 
client device, comprising: 

a. detecting, by the browser at the client device, an object associated with a 
web page, wherein the object is an activatable object (col. 1 1 , lines 1 1-26; col. 
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13, lines 5-10, the security model is incorporated into a web browser; col. 14, 
lines 12-44); 

b. according, by the browser at the client device, as part of displaying the 
web page, a trust level of a plurality of trust level security settings of the browser 
to the object, wherein the according comprises evaluating a content, source, or 
action of the object (see col. 3, lines 19-26, "prior to performing a protected 
operation, the mechanism of the invention determines the action to perform, 
based on the current Web site's security zone, the requested operation, and the 
security setting corresponding to the requested operation, and the security 
setting corresponding to the requested operation and the Web site's zone"; col. 
21 , lines 15-20, a user can specify low safety, medium safety and high safety 
with respect to JAVA permissions; col. 22, lines 1 1-col. 25, line 60, each safety 
setting defines a set of operations and privileges accorded to an activatable 
object [see col. 22, line 50-col. 23, line 28]; these operations and privileges are 
further dependent on whether the content is trusted or not trusted; hence, 
whether or not an object exceeds the designated level of trust depends on 
various characteristics of the object); 

c. suppressing the object when the trust level accorded to the object does 
not reach a threshold trust level based on variable combinations of the content, 
source, and action of the object (col. 31, line 46-col. 33, line 22; see figs. 13A-C). 



Application/Control Number: 10/780,144 Page 9 

Art Unit: 2431 

8. In addition, Jerger discloses wherein according the one or more of the plurality of 
trust level security settings of the browser to the object evaluates criteria including 
whether the object is from a trusted source and whether a download flag is set, and 
wherein further suppressing the object includes displaying a prompt to indicate the 
suppression of the object based upon a positive evaluation of any of the criteria; 
wherein the prompt is a modal prompt to provide a user with an activation choice (col. 
19, line 22-col. 20, line 12, settings for protected operations include 
enabling/disabling/prompting scripting of Java applets and Java Permission, and 
scripting, download and running of ActiveX; col. 20, lines 22-34, a security warning 
dialog window informs the user of the operation to be performed; the user can select 
whether or not the operation is performed; col. 22, line 50-col. 23, line 49, permission 
configuration options are determined based on whether the object is signed or unsigned 
content). However, Jerger does not disclose the criteria includes whether the object is 
to upgrade an existing object. Donohue discloses a method for updating software, 
including accessing a web site to download resources to update versions of a software, 
downloading the resources, verifying the resources and building the updated version, 
wherein verification step includes verifying the signature of the downloaded resource, 
verifying allowable growth paths from the current to the updated versions based on 
license restrictions, and verifying other authentication information including password 
and/or a database usage parameter value. Col. 10:1 6-1 2:48. It would be obvious to 
one of ordinary skill in the art at the time the invention was made for the criteria to 



Application/Control Number: 10/780,144 Page 10 

Art Unit: 2431 

include wliether the object is to upgrade an existing object, since this ensures that only 
trusted resources are used to upgrade an existing object. Donohue, 10:50-58. 

9. Neither Jerger nor Donohue disclose wherein the prompt is a modeless prompt 
to advise a user of the object being suppressed and to provide the user with a 
subsequent activation choice. Pennell discloses a method for blocking "bad" windows 
and displaying "good" windows, wherein a window analyzer identifies whether a window 
is "good" or "bad" based on a list having characteristics of the window, including the 
source of the window (paragraph 0043), and wherein when a "bad" window is identified, 
blocking the window and displaying a prompt to indicate the suppression of the window 
based on this identification, (paragraph 0081) Pennell further discloses the prompt is a 
modeless prompt to advise a user of the object being suppressed and provides the user 
with a subsequent activation choice. (Pennell, paragraph 0081, 5"", 6"" sentence) It 
would be obvious to one of ordinary skill in the art at the time the invention was made 
for the step of suppressing the object to include displaying a prompt to indicate the 
suppression of the object based upon the positive evaluation of any of the criteria; 
wherein the prompt is a modeless prompt to advise a user of the object being 
suppressed and to provide the user with a subsequent activation choice. One would be 
motivated to do so for a user-friendly manner of informing the user of a preventive 
measure by the invention. 

1 0. Furthermore, it is notoriously well known in the art to provide a description of an 
action to the user with a modeless prompt. Examples abound: modeless prompts 
describing status and actions have been a part of GUI-based OS systems from their 
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inception. The basic rational for providing a description with a modeless prompt is that 
it informs the user 1 ) an action was taken and 2) what the action was. Furthermore, a 
modeless prompt that is displayed when an object is suppressed without any 
description of the object being suppressed is analogous to an alert of a situation without 
any description of the situation; in both scenarios, a message that identified what has 
occurred enables the receiver of the prompt or alert to properly react to the prompt or 
alert. Official Notice of this teaching is taken. It would be obvious to one of ordinary 
skill in the art at the time the invention was made for the modeless prompt to provide a 
description of the object being suppressed. One would be motivated to do so to provide 
the user with a more user-friendly experience as known to one of ordinary skill In the art. 
Furthermore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made for the step of suppressing the object to include displaying a 
prompt to Indicate the suppression of the object based upon the positive evaluation of 
any of the criteria; wherein the prompt is a modeless prompt to advise a user of the 
object being suppressed and to provide the user with a subsequent activation choice; 
wherein the one or more instructions to determine the trust level security setting for the 
object causes the one or more processors to determine whether the object Is a popup 
window, and wherein further the one or more instructions to provide an activation 
opportunity for the action causes the one or more processors to display a user Interface 
indicating the suppression of the action due to a positive determination and offering an 
activation option. One would be motivated to do so for a user-friendly manner of 
informing the user of a preventive measure by the invention. 
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11. As per claim 3, tine rejection of claim 1 under 35 USC 1 03(a) as being being 
unpatentable over Jerger et al. US 6,321 ,334 (hereinafter Jerger) in view of Donohue 
USPN 6,202,207 (hereinafter Donohue) and further in view of Pennell et al. US Patent 
Application Publication No. 20030098883. (hereinafter Pennell). In addition, the object 
is embedded in the web page, and includes any one of downloadable code, a link to a 
URL, a popup window, graphic data, a video file, an audio file, and a text file. See 
Jerger, col. 10, lines 31-43, the object list an applet. 

12. As per claim 4, the rejection of claim 1 under 35 USC 103(a) as being being 
unpatentable over Jerger et al. US 6,321 ,334 (hereinafter Jerger) in view of Donohue 
USPN 6,202,207 (hereinafter Donohue) and further in view of Pennell et al. US Patent 
Application Publication No. 20030098883. (hereinafter Pennell). In addition, the object 
is a link to an object on a remote server, wherein further the object on the remote server 
includes any one of downloadable code, a URL, a popup window, graphic data, a video 
file, an audio file, and a text file. See Jerger, col. 10, lines 31-43, the object list a link 
pointing to an applet stored on a server. 

1 3. As per claim 5, the rejection of claim 1 35 USC 1 03(a) as being being 
unpatentable over Jerger et al. US 6,321 ,334 (hereinafter Jerger) in view of Donohue 
USPN 6,202,207 (hereinafter Donohue) and further in view of Pennell et al. US Patent 
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Application Publication No. 20030098883. (hereinafter Pennell). In addition, Jerger 
discloses wherein according the one or more of the plurality of trust level security 
settings of the browser to the object evaluates criteria including whether the object is 
from a trusted source and whether a download flag is set, and wherein further 
suppressing the object includes displaying a prompt to indicate the suppression of the 
object based upon a positive evaluation of any of the critena; wherein the prompt is a 
modal prompt to provide a user with an activation choice (col. 19, line 22-col. 20, line 
12, settings for protected operations include enabling/disabling/prompting scripting of 
Java applets and Java Permission, and scripting, download and running of ActiveX; col. 
20, lines 22-34, a security warning dialog window informs the user of the operation to be 
performed; the user can select whether or not the operation is performed; col. 22, line 
50-col. 23, line 49, permission configuration options are determined based on whether 
the object is signed or unsigned content). However, Jerger does not disclose the 
criteria includes whether the object is to upgrade an existing object. Donohue discloses 
a method for updating software, including accessing a web site to download resources 
to update versions of a software, downloading the resources, verifying the resources 
and building the updated version, wherein verification step includes verifying the 
signature of the downloaded resource, verifying allowable growth paths from the current 
to the updated versions based on license restrictions, and verifying other authentication 
information including password and/or a database usage parameter value. Col. 10:16- 
1 2:48. It would be obvious to one of ordinary skill in the art at the time the invention 
was made for the criteria to include whether the object is to upgrade an existing object. 
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since this ensures that only trusted resources are used to upgrade an existing object. 
Donohue, 10:50-58. The aforementioned cover the limitations of claims 5 and 6. 



1 4. As per claim 7, the rejection of claim 8 under 35 USC 1 03(a) as being 
unpatentable over Jerger in view of Donohue and Pennell is incorporated herein. 
Furthermore, it is notoriously well known in the art to provide a description of an action 
to the user with a modeless prompt. Examples abound: modeless prompts describing 
status and actions have been a part of GUI-based OS systems from their inception. 
The basic rational for providing a description with a modeless prompt is that it informs 
the user 1 ) an action was taken and 2) what the action was. Furthermore, a modeless 
prompt that is displayed when an object is suppressed without any description of the 
object being suppressed is analogous to an alert of a situation without any description of 
the situation; in both scenarios, a message that identified what has occurred enables 
the receiver of the prompt or alert to properly react to the prompt or alert. Official Notice 
of this teaching is taken. It would be obvious to one of ordinary skill in the art at the time 
the invention was made for the modeless prompt to provide a description of the object 
being suppressed. One would be motivated to do so to provide the user with a more 
user-friendly experience as known to one of ordinary skill in the art. The 
aforementioned cover the limitations of claim 7. 
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15. As per claim 9, the rejection of claim 1 under 35 USC 103(a) as being 
unpatentable over Jerger et al. US 6,321 ,334 (hereinafter Jerger) in view of Donohue 
USPN 6,202,207 (hereinafter Donohue) and further in view of Pennell et al. US Patent 
Application Publication No. 20030098883. (hereinafter Pennell). In addition, Jerger 
discloses wherein according the one or more of the plurality of trust level security 
settings of the browser to the object evaluates criteria including whether the object is to 
be rendered and whether a download flag is set, and wherein further suppressing the 
object includes displaying a prompt to indicate the suppression of the object based upon 
a positive evaluation of any of the criteria; wherein the prompt is a modal prompt to 
provide a user with an activation choice (col. 19, line 22-col. 20, line 12, settings for 
protected operations include enabling/disabling/prompting scripting of Java applets and 
Java Permission, and scripting, download and running of ActiveX; col. 20, lines 22-34, a 
security warning dialog window informs the user of the operation to be performed; the 
user can select whether or not the operation is performed; col. 22, line 50-col. 23, line 
49). 



1 6. As per claims 1 1 , the rejection of claim 9 under 35 USC 1 03(a) as being 
unpatentable over Jerger-Donohue-Pennell is incorporated herein. Moreover, Jerger 
does not disclose wherein the prompt is a modeless prompt to advise a user of the 
object being suppressed and to provide the user with a subsequent activation choice. 
Pennell discloses a method for blocking "bad" windows and displaying "good" windows, 
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wherein a window analyzer identifies wlietlier a window is "good" or "bad" based on a 
list having characteristics of the window, including the source of the window (paragraph 
0043), and wherein when a "bad" window is identified, blocking the window and 
displaying a prompt to indicate the suppression of the window based on this 
identification, (paragraph 0081) Pennell further discloses the prompt is a modeless 
prompt to advise a user of the object being suppressed and to provide the user with a 
subsequent activation choice. (Pennell, paragraph 0081 , 5"", 6"" sentence) It would be 
obvious to one of ordinary skill in the art at the time the invention was made for the step 
of suppressing the object to include displaying a prompt to indicate the suppression of 
the object based upon the positive evaluation of any of the criteria; wherein the prompt 
is a modeless prompt to advise a user of the object being suppressed and to provide 
the user with a subsequent activation choice. One would be motivated to do so for a 
user-friendly manner of informing the user of a preventive measure by the invention. 
The aforementioned cover the limitations of claims 1 1 and 12. 

17. As per claim 20, the rejection of claim 1 under 35 USC 103(a) as being being 
unpatentable over Jerger et al. US 6,321,334 (hereinafter Jerger) in view of Donohue 
USPN 6,202,207 (hereinafter Donohue) and further in view of Pennell et al. US Patent 
Application Publication No. 20030098883. (hereinafter Pennell). In addition, Jerger 
discloses further discloses wherein according the one or more of the plurality of trust 
level security settings of the browser to the object evaluates criteria including whether 
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the object is beneatli a security setting and whether a security setting flag is set, and 
wherein further suppressing the object includes displaying a prompt to indicate the 
suppression of the object based upon a positive evaluation of any of the criteria; 
wherein the prompt is a modal prompt to provide a user with an activation choice; 
wherein suppressing the object includes displaying a user interface to describe the 
content of the suppressed object and to provide a user with an opportunity to activate 
the content of the suppressed object (see col. 21 , lines 15-20, a user can specify low 
safety, medium safety and high safety with respect to JAVA permissions; col. 22, lines 
1 1-col. 25, line 60, each safety setting defines a set of operations and privileges 
accorded to an activatable object [see col. 22, line 50-col. 23, line 28], these operations 
and privileges are further dependent on the whether the content is trusted or not trusted; 
col. 20, lines 22-34, a security warning dialog window informs the user of the operation 
to be performed and the web site that is requesting the operation; the user can select 
whether or not the operation is performed). 

1 8. As per claims 21 , 23-26, and 28, the rejections of claims 1,3,4, 9, and 20 are 
rejected as applied above. Jerger further discloses a computer-readable storage 
medium having one or more instructions that, when read, cause one or more 
processors on a client device to execute steps as recited in claims 1 -4. See col. 13, 
lines 5-10, the security model is incorporated into a web browser. Jerger does not 
disclose wherein the prompt is a modeless prompt to advise a user of the object being 
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suppressed and to provide the user with a subsequent activation choice; wherein the 
one or more instructions to determine the trust level security setting for the object 
causes the one or more processors to determine whether the object is a popup window, 
and wherein further the one or more instructions to provide an activation opportunity for 
the action causes the one or more processors to display a user interface indicating the 
suppression of the action due to a positive determination and offering an activation 
option. Pennell discloses a method for blocking "bad" windows and displaying "good" 
windows, wherein a window analyzer identifies whether a window is "good" or "bad" 
based on a list having characteristics of the window, including the source of the window 
(paragraph 0043), and wherein when a "bad" window is identified, blocking the window 
and displaying a prompt to indicate the suppression of the window based on this 
identification, (paragraph 0081) Pennell further discloses the prompt is a modeless 
prompt to advise a user of the object being suppressed and to provide the user with a 
subsequent activation choice. (Pennell, paragraph 0081 , 5^^, e**" sentence) It would be 
obvious to one of ordinary skill in the art at the time the invention was made for the step 
of suppressing the object to include displaying a prompt to indicate the suppression of 
the object based upon the positive evaluation of any of the criteria; wherein the prompt 
is a modeless prompt to advise a user of the object being suppressed and to provide 
the user with a subsequent activation choice; wherein the one or more instructions to 
determine the trust level security setting for the object causes the one or more 
processors to determine whether the object is a popup window, and wherein further the 
one or more instructions to provide an activation opportunity for the action causes the 
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one or more processors to display a user interface indicating tine suppression of the 
action due to a positive determination and offering an activation option. One would be 
motivated to do so for a user-friendly manner of informing the user of a preventive 
measure by the invention. 

1 9. Furthermore, It Is notoriously well known in the art to provide a description of an 
action to the user with a modeless prompt. Examples abound: modeless prompts 
describing status and actions have been a part of GUI-based OS systems from their 
inception. The basic rational for providing a description with a modeless prompt is that 
It Informs the user 1 ) an action was taken and 2) what the action was. Furthermore, a 
modeless prompt that is displayed when an object is suppressed without any 
description of the object being suppressed is analogous to an alert of a situation without 
any description of the situation; in both scenarios, a message that identified what has 
occurred enables the receiver of the prompt or alert to properly react to the prompt or 
alert. Official Notice of this teaching is taken. It would be obvious to one of ordinary 
skill in the art at the time the invention was made for the modeless prompt to provide a 
description of the object being suppressed. One would be motivated to do so to provide 
the user with a more user-friendly experience as known to one of ordinary skill in the art. 
The aforementioned cover the limitations of claims 21 , 23-26, and 28. 

20. As per claim 22, the rejection of claim 21 under 35 USC 103(a) as being 
unpatentable over Jerger in view of Donohue in view of Pennell is incorporated herein. 
Although Jerger discloses according the trust levels to other types of active content 
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besides JAVA executables (see col. 22, lines 4-11), Jerger does not expressly disclose 
the object is one of a COM object or an ActiveX control. Touboul '194 discloses a 
system and method for protecting a computer from hostile downloadables, including 
Java applets, ActiveX control, JavaScript script or Visual Basic script. See col. 1 , lines 
65-67; col. 2, lines 21-37; col. 9, lines 63-65. This invention performs several tests on a 
downloadable, including whether an administrator has designated an override to allow 
or deny this particular downloadable, whether the downloadable performs potentially 
hostile operations, whether the downloadable was signed by a certificate authority, and 
whether the downloadable comes from a trusted source. See col. 5, line 1 7-col. 6, line 
48. The results of these tests are then forwarded to a logical engine; the logical engine 
examines the results of the tests and a security policy to determine whether to allow or 
block the Downloadable. See col. 6, lines 49-67. Hence, in view of the invention of 
Touboul '194, it would be obvious to one of ordinary skill in the art at the time the 
invention was made to modify the invention of Jerger such that the object is one of a 
COM object or an ActiveX control. One would be motivated to do to provide a fine 
grained definition of security policy on any type of active content that is downloaded 
from the network. The aforementioned cover the limitations of claim 22. 

21 . As per claims 36, 38-41 , and 45, they are apparatus claims corresponding to 
claims 1 , 3, 4, 9, and 20, and they do not teach or define above the information claimed 
in claims 1 , 3, 4, 9, 10, 16, 17 and 20. Therefore, claims 36, 38-41 , and 45 are rejected 
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as being anticipated by Jerger for the same reasons set forth in the rejections of claims 
1, 3, 4, 9, and 20. 

22. As per claims 42, 43, they are apparatus claims corresponding to claims 11,21- 
26, and 28, and they do not teach or define above the information claimed in claims 1 1 - 
15, 18, 19, 21-26, 28, 29 and 33. Therefore, claims 42, and 43 are rejected as being 
unpatentable over Jerger in view of Pennell for the same reasons set forth in the 
rejections of claims 11,21 -26, and 28. 

23. Claims 2, and 37 are rejected under 35 USC 1 03(a) as being unpatentable over 
Jerger in view of Donohue USPN 6,202,207 (hereinafter Donohue) and further in view 
of Pennell et al. US Patent Application Publication No. 20030098883. (hereinafter 
Pennell).of Touboul US 6,092,194 (hereinafter Touboul '194). 

24. As per claim 2, the rejection of claim 1 under 35 USC 103(a) as being 
unpatentable by Jerger-Donohu-Penell is incorporated herein. Although Jerger 
discloses according the trust levels to other types of active content besides JAVA 
executables (see col. 22, lines 4-1 1 ), Jerger does not expressly disclose the object is 
one of a COM object or an ActiveX control. Touboul '194 discloses a system and 
method for protecting a computer from hostile downloadables, including Java applets, 
ActiveX control, JavaScript script or Visual Basic script. See col. 1 , lines 65-67; col. 2, 
lines 21-37; col. 9, lines 63-65. This invention performs several tests on a 
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downloadable, Including whether an administrator has designated an override to allow 
or deny this particular downloadable, whether the downloadable performs potentially 
hostile operations, whether the downloadable was signed by a certificate authority, and 
whether the downloadable comes from a trusted source. See col. 5, line 17-col. 6, line 
48. The results of these tests are then forwarded to a logical engine; the logical engine 
examines the results of the tests and a security policy to determine whether to allow or 
block the Downloadable. See col. 6, lines 49-67. Hence, in view of the invention of 
Touboul '194, it would be obvious to one of ordinary skill in the art at the time the 
Invention was made to modify the invention of Jerger such that the object Is one of a 
COM object or an ActiveX control. One would be motivated to do to provide a fine 
grained definition of security policy on any type of active content that is downloaded 
from the network. The aforementioned cover the limitations of claim 2. 

25. As per claim 37, they are claims corresponding to claims 2, and 36, and they do 
not teach or define above the information claimed in claims 2, and 36. Therefore, claim 
37 is rejected as being unpatentable over Jerger in view of Touboul '194 for the same 
reasons set forth in the rejections of claims 2, 36 and 56. 

Conclusion 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1 .1 36(a). 
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A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to KAVEH ABRISHAMKAR whose telephone number is 
(571)272-3786. The examiner can normally be reached on Monday thru Friday 8-5. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Nathan Flynn can be reached on 571 -272-1 91 5. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Kaveh Abrishamkar/ 
Primary Examiner, Art Unit 2431 

IK. A./ 
08/04/2011 

Primary Examiner, Art Unit 2431 



